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IMPROVED SECURE AUTHENTICATION USING DIGITAL CERTIFICATES 
Field of the invention 

The present invention relates to an improved method, system and computer program product 
for providing a secure authentication using digital certificates. 

Background of the invention 

Security is one of the prime concerns in internet applications these days. SSL is the most 
common means of securing communication. For Authentication, SSL and almost all other 
protocols use Digital Certificates or Userld/Passwords. Other Authentication means include 
Biometrics etc. Normally, in e-business related applications, the server is authenticated using 
a Certificate signed by a Certifying Authority. The authentication of the client is mostly 
dependent on the application. Sometimes it is done via Userld Password, sometimes via 
Digital Certificates or maybe not done at all. 

The authentication, however, is singular and static. There is no means to dynamically 
authenticate the user. The problem is described in more detail below. 

In SSL (Secure Socket Layer), the client needs to have a certificate signed by a Certificate 
Authority which is listed as trusted in the Servers Trusted Database. This enables it to access 
the application depending upon the access allowed to the user identified from the certificate. 
Now often, it is desirable that a user acts as two roles. A typical example would be a manager 
acting on behalf of his employee who may be on leave etc. In such cases, the server will not 
accept another certificate unless the session is broken and a new one established. Practically, 
speaking this means closing the browser or the application or wait for sometime for the 
timeout. 

In SET (Secure Electronic Transaction), the client needs a Digital Credit Card i.e. special 
Digital Certificate with users* Credit Card information to buy things online. Now, he might 
wish to use one card for some items while use another card for the other items. 

In SET, from the Merchant point of view also, he might wish to offer some certificate to a 
group of clients and some to other. That is to say, if the client wishes to buy high valued 
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items, the server wishes to present Certificate-A and if the client is buying low priced items, 
he wishes to present Certificate-B. A typical example would be a merchant who wishes to 
place his money from Diamond items in one bank and the rest in another. Another example 
would be a number of merchants selling stuff from a single mall / store. They would like to 
present their own certificates during payment on the SET protocol. 

In Secure Email applications, the client authenticates himself / herself using the Email 
Certificate i.e. a special Digital Certificate with users 1 email information. With internet users 
having more than one email IDs, the requirement to change their Email preferences is all the 
more relevant even in case of personal desktop. Users may wish to send some mails using 
their official ID and others using their personal ones (hotmail etc). 

In Secure Email applications, if the desktop is shared between users, the next user will have 
to close and open the application to view his mail i.e. to change the certificate. The 
equivalent of 'Switch ID 1 in Notes is not available. 

Another major problem comes in applications that are providing all the above. They have 
some applications that require normal authentication using Digital Certificates. 
Simultaneously, they might also have a store where users can buy using SET certificates. He 
might also provide his users with the Secure Mail option. Now each of these would require a 
different type of X509 Certificate or a combined Certificate with all the 3 extensions. 

The problem with 3 different certificates has been discussed above, i.e the user needs to 
timeout or restart the session to use a different service. 

The combined Certificate solves the problem to some extent. However, there are some 
disadvantages. 

1. If a new application is to be added, the certificates need to be reissued and retyped. 
Example would be: A site implements a SET based store and the client get SET 
Certificates from CAs, however after some time the site also provides a Secure Email 
facility, in that case, the users need to have a combined certificate. SO they have to 
get a new certificate. The certificates being issued by the CA also need to be 
reformatted to have an additional field related to E-mails. This would lead to 
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authentication data and present new authentication data and present new authentication data 
as and when required, thereby enabling establishment of new transactions without the need 
for closing an existing session. 

5 The present invention further provides in a system for providing secure authentication using 
digital certificates, an improvement to enable the selective transfer of authentication data 
comprising: 

means for presenting basic authentication data certified by an accepted 
certifying authority, at the commencement of a secure transaction, 

10 - means for transferring additional individual authentication data units against 

specific requests, as and when required, 

J3 thereby eliminating the risks associated with providing any authentication data that is 

^Sj not required for a particular transaction. 

C|5 The authenticity of said additional individual authentication data is established by using the 
public key provided in said basic authentication data. 

H The authenticity of said additional individual authentication data is established by means of 
1% signature of said accepted certifying authority. 

m 

The said additional individual authentication data is provided without the need for 
establishing a separate session. 

The above improved system further comprises the means for invalidating previously 
25 presented authentication data and present new authentication data and present new 
authentication data as and when required, thereby enabling establishment of new transactions 
without the need for closing an existing session. 

The present invention also provides in a computer program product comprising computer 
30 readable program code stored on computer readable storage medium embodied therein for 
providing secure authentication using digital certificates, an improvement to enable the 
selective transfer of authentication data comprising: 

computer readable program code means configured for presenting basic 

4 
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authentication data certified by an accepted certifying authority, at the 
commencement of a secure transaction, 

computer readable program code means configured for transferring additional 
individual authentication data units against specific requests, as and when 
5 required, 

thereby eliminating the risks associated with providing any authentication data that is 

not required for a particular transaction. 

The authenticity of said additional individual authentication data is established by using the 
10 public key provided in said basic authentication data. 

The authenticity of said additional individual authentication data is established by signature 
i,g of said accepted certifying authority. 

Cfi5 The said additional individual authentication data is provided without the need for 
O establishing a separate session. 

53 The said improved computer program product further comprises the computer readable 

iy 

f U program code means configured for invalidating previously presented authentication data and 
S) present new authentication data and present new authentication data as and when required, 
*? A thereby enabling establishment of new transactions without the need for closing an existing 
session. 

Brief Description of the drawings: 

25 The invention will now be described with reference to the accompanying drawings 

Figure 1 shows the flow chart of the actions at the client, according to this invention. 
Figure 2 shows the flow chart of the actions at the server, according to this invention. 

30 

Detailed description of the invention: 

In the proposed solution the user presents a General Purpose Certificate called the 'Identity 

Certificate 1 (IC) (1.1) at the start of the secure session. This would essentially be the normal 
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X509 certificate with no extensions i.e. it will contain the Public Key of the holder alongwith 
his credentials (Name, Organization Unit, Organization, Address etc) and the Certificate 
Serial Number and Certificate Authority's Signature. 

5 Current Certificates look like the image given below. 

r 

This certificate has been verified I i I for the following uses: 



• SSL Server Certificate 

• Email Signer Certificate 

• Email Recipient Certificate 

• Status Responder Certificate 

Name: Class 4 Public Primary Certification Authority - G2, VeriSign, Inc., 
US 

Issued under: Verisign, Inc. 

Serial: 32.88:BE:9A:D2:F5:EB:13:47:FB:7F:C4:20:37:25:F8 
Number: 

Validity: Mon May 18, 1998 to Wed Aug 02, 2028 
Fingerprint: 26:6D:2C:19:98:B6:70:68:38:50:54:19:EC:90:34:60 

The identity certificate for the same user could be: 

r 

This certificate has been verified IT! : 



1 



Name: Class 4 Public Primary Certification Authority - G2, VeriSign, Inc., ! 

US ; 

Issued under: VeriSign, Inc. \ 

Serial: 32:88:8E:9A:D2:F5:EB:13:47:F8:7F:C4:20:37:25:F8 ! 

Number J 

i 

Validity: Mon May 18, 1998 to Wed 02, 2028 \ 

Fingerprint: 26:6D:2C:19:98:B6:70:68:38:5034.19:EC:90:34:60 ! 
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Alongwith the IC, the entities would hold individual bits of information signed by their own 
private key (which may be signed by the CA or not). These would be called the "Application 
Unit Self Certificate' (AUSC) where the AUSC would be different for different bits of 
information. Depending upon the transaction the user or the server would determine if 
5 additional authentication is required (1.2). If such authentication is necessary the holder 
would present the required AUSC (1.3) or continue session (1.4). The AUSCs can be signed 
by the Certification Authority or may not be signed by the CA. This is optional and the server 
has a choice to demand what it requires. This will be a configurable option in the web servers 
configuration file. Client Applications (including browsers) can also generate these 

10 Certificates on the fly in case the CA signature is not required. Clients will also have an 
option to initiate a handshake with the Server in which they will provide the AUSC to the 

*« server. 

*E At the server end, the server will verify and accept the IC presented by the client (2.1). It 
3J would then determine whether or not any additional authentication was required (2.2) 

if ^ 

:T. depending on the nature of the transaction as well as configured options. If additional 
authentication is necessary, the server would request such additional data (2.3) from the 
;5 clients. Finally, the server would validate the AUSCs presented by the clients (2.4) by 
% verifying the certification of the AUSCs presented by the client by the certification authority 
2D and other requirements specified on the configuration data. AUSCs would provide the extra 
bits of information required to access various services on the web site and only relevant 
AUSCs will be sent by the client to the server. In case, a similar AUSC has been already 
provided, it will be overwritten by the new AUSC. The server will have an access control 
mechanism (this will be the same as in current applications), in which it can administer 
25 which Identity Certificates can provide what types of AUSCs. 

For example each user can have all the extensions fields currently in a SET certificate in a 
SET USC. He / She can have his email information in a Email USC This would enable him 
to present the information selectively as and when required. In other words, the user can log 
30 on to the application with his IC and present his AUSCs as and when required. 

An Email USC might look like: 
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This certificate has been verified fTI : 



i Name: Email unit Self Certificate J 

i Value: deepakgupta@in.ibm.com | 

i Issued under: VeriSig, Inc. / Self ] 

Serial: 32:88:8E:9A:D2:F5:EB:13:47:F8:7F:C4:20:37:25:F8 
Number. 

! Validity: Mon May 18, 1998 to Wed 02, 2028 \ 
j i 
, Fingerprint: 26:6D:2C:19:98:B6:70:68:38:50:54:19:EC:90:34:60 \ 

I , 

In the above, after presenting the Identity Certificate, if the user wishes to use Secure Email, 
the user may present his/her Email USC to the server and the server will be able to extract the 
public information, the email Id and other relevant information from the Email USC. 

So if a website offers only general secured surfing on its site, the user can only present his IC 
to the server. This would authenticate the client to the server. The process of verifying would 
be the same as is being done for normal X509 Digital Certificates these days. This would 
include verifying the CA's signature on the Certificate and then identifying the user from the 
name on the Certificate. The point to note here is that after verification process, the users 
public key is also with the server. The only deviation in the present invention from normal 
SSL handshake would be that the server would store the clients public key in the session. 
This can be persisted in a database or stored in the memory depending upon the type of 
server / application used. 

Subsequently, the site adds the secure email facility to its web site, the user can then also 
present his / her Email USC to the server. The process of authenticating remains the same as 
before. However, when the client wishes to use the secure email facility, the server asks for 
the Email USC from the client which can then be presented. Since the user is already 
authenticated, the server holds the public key of the client. So the signature on the USC 
(which is of the client) can be verified by the server. Hence the email information of the 
client is passed on to the server securely without the CA having to issue another certificate. 
Same holds true for SET based applications and other applications. 
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Another advantage of the same is that the client can only expose the required fields to the 
server and hide the fields it does not want to show. For example if the client wishes to only 
surf a secured site, the client would not like to reveal any SET credentials and email address 
to the server on which the client is surfing. Having a common certificate would not help. 
Having USCs would solve the problem automatically. 

The client would also have an option in the client software (including browsers) to invalidate 
a previously presented Certificate and present a new one. This would be similar to 
implementing the LogOut Option by the websites i.e. a request to break the session and start 
a new one. Nothing special is being claimed or proposed here except from the fact that the 
option of providing the LogOut option is built in with the client applications. Currently the 
web sites provide a link or button to do so. Building it in the client applications would allow 
the users to change their Identity Certificates also in between without closing their browsers 
(or other client applications) and restarting them. 

WORKING: 

The flow of activities between the Server and the Client, as shown in figures 1 & 2 would be: 

1 . Normal Handshake as in the current protocols with the Client presenting the Identity 
Certificate only. (1.1) 

2. The server verifies the IC (2.1) and determines whether or not additional 
authentication is required (2.2). If additional authentication is necessary the server 
generates a request on the client (2.3) 

3. The client received the request from the server and determines the nature of the 
additional requirements (1.2). Optionally, the client may also itself determine what 
additional authentication data it needs to send (1.2). The client accordingly presents 
the required AUSC to the server (1.3) 

4. The server verifies the AUSC using clients' public key or by verifying certification by 
certifying authority, based on requirements specified in configuration data (2.4) The 
Server can specify in the Server configuration, if it will accept AUSCs signed only by 
the user of the signature of the CA is mandatory on the AUSCs also. This would be as 
per the security requirements of the web site. 
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5. The session continues (1.4) and (2.5). At any point of time, the server can request the 
client for a particular AUSC. Also, at any point of time, the client can initiate and 
present another AUSC. If a similar AUSC has been presented before, the previous one 
will be overwritten by the new one. 

At the server, each Identity Certificate / User can be given fine grained access. Which 
user can present which types of AUSC and the rights associated with all ICs and 
AUSCs can be defined. (The mechanism for the same would be similar to the one 
used currently for normal Digital Certificates). 

In the above discussion, the examples have been explained assuming the client having the IC 
and the ASUCs, however the same can be implemented at the server side also. This would 
allow the websites to switch their certificates depending upon the activities of the client. The 
reasons for having multiple certificates at server can be many. A relevant situation would be 
a merchant in SET who wished to switch his Bank if the client is buying high valued items 
OR he may wish to put his money from some special items in a separate acquirer Bank OR 
he may wish to have higher bit encryption for high valued items and so on. 

The examples have mentioned SET and Secure Email, however they are only examples, the 
solution is towards all applications that require Digital Certificates and special extensions to 
the same. 

The proposed solution is also scalable and any new application that comes in future can be 
simply added in the framework by means of a simple new Application USC. 
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